Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/4ddd75-3160-4065-bb69-bb17875db323/1/JwxXzj5cr_3QWyFy1kan3GGisWk.roa
File: JwxXzj5cr_3QWyFy1kan3GGisWk.roa (raw, json)
Hash identifier: CXHsX39cyH/mQKGpqwQVjeUfNZjB5qBHj4hTMYaXUQM=
Subject key identifier: 27:0C:57:CE:3E:5C:AF:FD:D0:5B:21:72:D6:46:A7:DC:61:A2:B1:69
Certificate issuer: /CN=24954f608ac12b684ef865f39af0e94e250b9454
Certificate serial: 018FC70804C5B42C4CC2D0C778552F81E502
Authority key identifier: 24:95:4F:60:8A:C1:2B:68:4E:F8:65:F3:9A:F0:E9:4E:25:0B:94:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JJVPYIrBK2hO-GXzmvDpTiULlFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/4ddd75-3160-4065-bb69-bb17875db323/1/JwxXzj5cr_3QWyFy1kan3GGisWk.roa
Signing time: Thu 30 May 2024 01:05:42 +0000
ROA not before: Thu 30 May 2024 01:05:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207108
IP address blocks: 185.139.7.0/24 maxlen: 24
2a12:ab46::/32 maxlen: 32
2a12:ab46:2666::/48 maxlen: 48
2a12:ab46:5341::/48 maxlen: 48
2a12:ab46:5342::/48 maxlen: 48
2a12:ab46:5343::/48 maxlen: 48
2a12:ab46:5344::/48 maxlen: 48
2a12:ab46:5345::/48 maxlen: 48
2a12:ab47::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/4ddd75-3160-4065-bb69-bb17875db323/1/JJVPYIrBK2hO-GXzmvDpTiULlFQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/4ddd75-3160-4065-bb69-bb17875db323/1/JJVPYIrBK2hO-GXzmvDpTiULlFQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/JJVPYIrBK2hO-GXzmvDpTiULlFQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c7:08:04:c5:b4:2c:4c:c2:d0:c7:78:55:2f:81:e5:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24954f608ac12b684ef865f39af0e94e250b9454
Validity
Not Before: May 30 01:05:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=270c57ce3e5caffdd05b2172d646a7dc61a2b169
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:27:fe:98:ab:2a:0a:ab:7d:59:58:c0:ea:97:
83:75:65:d5:85:f1:ad:73:58:92:89:14:82:d8:03:
51:63:ee:81:18:22:19:18:72:c5:7d:67:0d:06:8f:
80:f6:37:50:01:9a:37:79:61:fd:06:09:15:35:0c:
3f:02:4d:b0:80:73:8b:db:87:d7:20:ab:4b:30:3e:
88:19:de:7d:1a:f2:20:4c:84:a1:56:f2:34:34:01:
49:dd:11:13:68:88:6c:f1:56:6c:cd:f0:dc:65:ba:
af:bb:8b:16:8b:66:a4:e6:8e:e1:ca:4f:bc:9f:26:
6b:73:9e:1a:cc:b3:aa:b6:ff:54:34:e6:a9:89:b7:
82:a4:85:c9:1f:b0:ef:09:6b:7f:8e:ee:54:31:06:
62:46:29:95:ec:5c:cb:36:0e:fa:0d:59:08:13:5f:
a8:3d:19:6a:dd:69:26:33:9d:5c:ea:8e:32:d0:24:
ed:2d:9d:20:2a:4b:c6:10:d8:3a:15:e2:3a:74:8d:
f7:4e:5d:69:b9:3a:72:c3:dd:5f:70:9b:1d:48:a7:
d0:b8:55:80:e7:51:dd:c7:27:6a:96:ef:60:e2:85:
50:c2:46:1c:01:d0:5e:ce:54:0f:51:7a:e6:ed:5a:
09:70:bb:2a:f5:d7:a1:0e:2b:61:87:62:2d:e9:3a:
47:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:0C:57:CE:3E:5C:AF:FD:D0:5B:21:72:D6:46:A7:DC:61:A2:B1:69
X509v3 Authority Key Identifier:
keyid:24:95:4F:60:8A:C1:2B:68:4E:F8:65:F3:9A:F0:E9:4E:25:0B:94:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JJVPYIrBK2hO-GXzmvDpTiULlFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/4ddd75-3160-4065-bb69-bb17875db323/1/JwxXzj5cr_3QWyFy1kan3GGisWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/4ddd75-3160-4065-bb69-bb17875db323/1/JJVPYIrBK2hO-GXzmvDpTiULlFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.7.0/24
IPv6:
2a12:ab46::/31
Signature Algorithm: sha256WithRSAEncryption
23:bc:32:3a:45:ce:cf:e0:ab:0b:e1:73:1c:d5:a8:4c:ba:ee:
e7:7e:cf:d5:3b:92:8d:aa:37:5d:64:d9:12:cd:fe:3d:4f:de:
d3:6a:0e:a6:db:0a:54:30:92:1f:20:e2:96:e2:d7:b4:85:ed:
05:c0:8d:32:ba:0d:3b:3e:79:9b:2c:b1:c0:7c:b0:68:6b:7f:
c7:1f:21:0b:ca:c3:68:b3:36:f4:cb:0c:f8:69:5e:2d:fe:ee:
82:d0:a0:98:b3:d3:aa:12:12:13:41:76:11:30:5b:36:03:a3:
7e:df:54:e0:c8:55:7c:6b:da:92:2c:2d:00:96:00:6c:29:f2:
23:49:24:34:0a:46:77:9e:6a:19:af:b6:be:6f:b3:a1:e0:c5:
9d:57:5f:fb:ba:a6:40:ee:e0:b8:ce:57:f4:5f:ea:76:18:01:
ff:cb:b5:bb:8d:39:bd:8d:bc:87:ed:62:c7:88:8e:c1:53:4e:
1f:61:78:e5:09:8d:7e:58:a7:a8:85:32:cf:22:06:7f:2d:3e:
55:98:05:c2:d1:0d:6e:35:ba:64:7f:ae:4b:f6:d6:5d:0a:e3:
18:e6:99:da:3c:63:be:01:d0:98:7c:61:c0:e9:9d:e3:af:34:
69:25:19:6c:aa:13:ff:9e:6e:b1:9a:94:42:8c:fb:3c:91:3b:
81:b7:bd:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:36:21 2024 by rpki-client on console-ams.rpki-client.org